Escolar Documentos
Profissional Documentos
Cultura Documentos
Seamlessly extend secure access to your enterprise fast, with reduced deployment time and cost
Agenda
The value of network identity Solving business problems with network identity Sun Infrastructure Solution for Network Identity Examples and Business Scenarios Why Sun is the right choice
A set of business processes, technologies, and operational infrastructure for managing the lifecycle of an identity and its relationship to business applications and services3
What is an Identity?
An identity might be an employee, customer, partner, or supplier, but it might also be a package or a product! Identities have lifecycles, and business rules governing their creation and deletion are important to your security Business applications are not uniformly accessed by all identities, and role-based access helps keep your businesscritical data secure Sun Infrastructure Solution for Network Identity is the fusion of identity management, security, authentication, authorization, access, and provisioning, all inside of a policy-based framework.
4
Radically reducing cost by improving operational efficiencies with self service, delegated administration, identity consolidation and automated provisioning Greatly improve user experience and productivity with single sign-on and self service Vastly increase revenue opportunities through affinity, loyalty and partnership programs using federated services Significantly lower business risk by improved privacy and regulatory compliance through access management and Liberty Alliance architecture
5
How do I implement a friends and family plan to increase revenues? How do I efficiently integrate new partners and suppliers into my business processes? How do I manage the 'soft' supply chain that includes life, dental, health, disability, retirement, and flexible spending plans?
How do I avoid creating identity silos when companies are acquired? How do I reliably set up accounts for new employees and make sure they are closed immediately upon termination? How do I support mobile employees at drop-in centers, home offices, or on wireless devices?
6
IT Director
HR Director
Do You Know...
The average is 21! Half write them down, and 2/3 rarely or never change them (Source: 2002 NTIA Monitor Password Survey, UK; zdnet.com)
45% of help desk calls are for re-setting passwords, and the cost ranges from $51 to $147 for non-automated environments (Source: Meta Group, 2002; Gartner, 2002, respectively)
An average of 20 percent, perhaps because the typical IT organization has 10 different systems maintaining identity information with no synchronization (Source: Gartner, 2003; Sun customer survey 2002)
These issues not only reduce your competitiveness -they put you at risk!
"Through 2004, 70 percent of extranet access management deployments will be tied to reducing operational costs, which will place a premium on pre-integrated solutions, short payback periods ... .7 probability).
(Source: Gartner, 2003)
8
Network identity addresses common points of pain across all of the groups that companies interact with
Productivity
Competing Needs
Administration Costs
Interoperability
R JAX P S OA
UBR
Portal Server Directory Service Service Service Service Application Server Content Communications / Messaging Management, KM, DM, Operating Environment Channels
Limited Features
Legacy ERP
R JAX P S OA
UBR
Portal Server Directory Service Service Service Service Application Server Content Communications / Messaging Management, KM, DM, Operating Environment Channels
Limited Features
Legacy ERP
Reduces cost and complexity by integrating and testing innovative products Includes hardware, software, storage, and services all for one low price Uses qualified partners Works out-of-the-box Integrates with existing IT infrastructure, including legacy systems Uses repeatable methodologies and reference architectures to reduce time-to-market Provides comprehensive support and services
14 13
Benefit
Reduces administration costs while increasing security and mobility Reduces risk inherent with multiple logins and identity credentials Automating manual procedures increases productivity, reduces cost, and is less errorprone Increases productivity and enables innovative marketing programs to increase revenue Increases process efficiencies and reduces costs, including call-center overhead Creates new revenue-generating and marketing opportunities Improves privacy and demonstrates implementation of government regulations
14
Integrating into enterprise businessprocesses requires additionalcomponents and services The combination of people, policy,and technolgy is the solution!
Employee
Supplier
Customer
Partner
Portal Server
Meta Directory
Workflow Management
Central Directory
PBX
Self-service
Policies
Administration
Application Security
Identity Management
15
Central Access Management, authentication, Web SSO, federation, self-service, delegated authority Stores identity profiles Massive scalability Multi-platform
Consolidates & synchronizes identity information Works with Microsoft Active Directory
Directory Services
The scalable, high speed data repository foundation for Identity Management Sun ONE Directory Server, Sun ONE Meta Directory, and Sun ONE Identity Synchronization for Windows New Capabilities:
64-bit addressing and linear scalability up to 12 CPUs enables data center consolidation 4-way multi-master replication enables high availability, reliability and disaster mgmt initiatives Attribute encryption, fractional replication, multiple password policies helps address government regulatory compliance, privacy issues Multi-protocol front end design - LDAP, DSML, futures - reduces TCO
17
Platform Support:
Sun ONE App Server, BEA WebLogic, IBM WebSphere Solaris x86 support
Liberty 1.1 Additional Authentication Types Filtered roles support for user management Password reset/Forgotten password
18
Outperforms the leading competitor by up to 10X Is the first 64-bit LDAP server on Solaris and HP-UX Is the first LDAP product to provide Class of Service for managing large scale deployments Powers 8 of the top 10 financial services companies in the US (Fortune 2002) Has over 1,500 installed base customers and 2B entries sold worldwide
19
First commercially available Identity Management product to support both Liberty v 1.1 and SAML 1.0 Delivers Broadest application security support ever from Sun with over 75 agents available across different web servers, app servers, and operating systems First Identity Management product to support Solaris x86 Provides full standard support for
Provides cost reductions for both human and system resources self service, password reset Supports heterogeneous legacy environments allowing for integration with wide range of application solutions
20
Sun's solution is different because of the accelerated methodology it practices for implementing network identity solutions The Sun Services organization has tools to help you at every step along the way:
Assessment Strategy and Planning Architecture and Design Implementation Legacy Systems Integration and Migration
Rapid deployment possible because Sun has already integrated and tested the solution
21
Passlogix for enterprise single sign-on PeopleSoft, Siebel for workflow management Thor, WaveSet for identity provisioning ActivCard, Schlumberger for Java Card platform-based identity credentials Entrust, RSA, and Verisign for Public-Key Infrastructure (PKI) software
22
Benefits Summary
Increase revenue by knowing who you do business with and leveraging your improved relationship with your customers Radically reduce costs by improving operational efficiencies Reduce the chance for errors that cause lapses in security by automating manual procedures Significantly lower busienss risk by improved privacy, security, and regulatory compliance
23
Business Scenarios
Account provisioning
Adding a new employee using an automated workflow Delegating administration and enforcing role-based access Using a single identity credential for building access, application access, and secure remote access View full demonstrations of these topics and more at the Sun iForce center nearest you
24
Account Provisioning
Automated workflow Manager uses delegated
authority to add new employee via portal
E-mail accounts
HR Request
automatically created
Automatic account creation Identity synchronization across multiple systems Delegated administration Policy and role-based access Single sign-on across company applications User awareness in HR system Audit Trail
26
Enhance services delivered to disparate customer base GoArmy.com portal provides access to key information for command personnel as well as potential recruits Provides secure access to internal information through Internet, intranet, and extranet technologies Customized, role-based access to resources enabled using an identity-based solution External, Internet-facing portal provides information to potential recruits Sun ONE Identity Server Sun ONE Portal Server Sun ONE Directory Server Sun ONE Web Server
27
Solution:
Benefits:
order to inventory management and needs access to partner company's inventory control systems
Access to inventory
Determines who has access to what resources Delegated administration Role-based policy enforcement Automated account creation and deletion Single sign-on functionality Secure remote access
29
30
Single identity card used in multiple contexts Foundation for a mobile infrastructure Secure remote access Unified authentication via central identity server to any device
31
Consolidate enterprise directory infrastructure Sun ONE Directory Server and Directory Proxy Server provide scalable, highly available directory services Provides a carrier class service scalable to millions of users for delivering secure and personalized content Centralized directory service streamlines administration processes and costs Provides a common developer framework for more efficient delivery of applications Sun ONE Directory Server Sun ONE Directory Proxy Server
32
Solution:
Benefits:
Why Sun?
Strategic approach to network identity that incorporates the interaction between people, policy,and technology Identity is managed by integrating innovative, open-standards-based products Sun's experienced consultants exercise a repeatable methodology Pre-configured, pre-integrated, pre-tested solution that you can trust and buy today for one low price Best-of-breed components from partners integrated to customize the solution for your enterprise Protects your investment, avoiding rip and replace implementations
33
Next Steps...
View complete demonstrations of the examples we've discussed Learn how the solution can integrate in your environment and address identity issues at your company Get started by using Sun's capability assessment tool Use Sun's expertise to build a proof-of-concept
34